Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255241 7.1 危険 オラクル - Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0896 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
255242 7.2 危険 サン・マイクロシステムズ
オラクル		 - Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0882 2010-05-14 18:40 2010-04-13 Show GitHub Exploit DB Packet Storm
255243 7.5 危険 オラクル - Oracle Sun Product Suite の Sun Java System Directory Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0897 2010-05-14 18:40 2010-04-13 Show GitHub Exploit DB Packet Storm
255244 10 危険 オラクル - Oracle Sun Product Suite の Sun Ray Server Software コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0888 2010-05-14 18:40 2010-04-13 Show GitHub Exploit DB Packet Storm
255245 5 警告 サン・マイクロシステムズ
Pidgin
レッドハット		 - Pidgin の gtkimhtml.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0423 2010-05-14 18:39 2010-02-18 Show GitHub Exploit DB Packet Storm
255246 4.3 警告 サン・マイクロシステムズ
Pidgin
レッドハット		 - Pidgin の libpurple におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0420 2010-05-14 18:38 2010-02-18 Show GitHub Exploit DB Packet Storm
255247 7.5 危険 Carnegie Mellon University (Project Cyrus)
アップル
サイバートラスト株式会社
サン・マイクロシステムズ
オラクル
レッドハット		 - Cyrus SASL ライブラリにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0688 2010-05-14 18:37 2009-05-15 Show GitHub Exploit DB Packet Storm
255248 7.5 危険 サン・マイクロシステムズ
GNOME Project
レッドハット		 - Evolution Data Server (別名 evolution-data-server) における複数の整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0587 2010-05-14 18:37 2009-03-14 Show GitHub Exploit DB Packet Storm
255249 5.8 警告 サン・マイクロシステムズ
GNOME Project
レッドハット		 - Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0582 2010-05-14 18:37 2009-03-14 Show GitHub Exploit DB Packet Storm
255250 1.2 注意 日本電気
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
OpenSSL Project
レッドハット		 - RSA key reconstruction vulnerability - CVE-2007-3108 2010-05-14 18:37 2007-08-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277721 9.8 CRITICAL
Network 		atutor atutor confirm.php in ATutor 2.2 and earlier allows remote attackers to bypass authentication and gain access as an existing user via the auto_login parameter. CWE-287
Improper Authentication 		CVE-2014-9753 2024-11-21 11:21 2020-02-12 Show GitHub Exploit DB Packet Storm
277722 8.1 HIGH
Network 		libuv
nodejs 		libuv
node.js 		The uv_rwlock_t fallback implementation for Windows XP and Server 2003 in libuv before 1.7.4 does not properly prevent threads from releasing the locks of other threads, which allows attackers to cau… CWE-362
Race Condition 		CVE-2014-9748 2024-11-21 11:21 2020-02-12 Show GitHub Exploit DB Packet Storm
277723 9.8 CRITICAL
Network 		nwjs nw A vulnerability exists in nw.js before 0.11.3 when calling nw methods from normal frames, which has an unspecified impact. NVD-CWE-noinfo
CVE-2014-9530 2024-11-21 11:21 2020-02-8 Show GitHub Exploit DB Packet Storm
277724 7.8 HIGH
Local 		videolan vlc_media_player The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c in VideoLAN VLC media player before 2.1.6 uses a stack-allocation approach with a size determined by arbitrary input data, which … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9630 2024-11-21 11:21 2020-01-25 Show GitHub Exploit DB Packet Storm
277725 7.8 HIGH
Local 		videolan vlc_media_player Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and… CWE-120
Classic Buffer Overflow 		CVE-2014-9629 2024-11-21 11:21 2020-01-25 Show GitHub Exploit DB Packet Storm
277726 7.8 HIGH
Local 		videolan vlc_media_player The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to trigger an unintended zero-size malloc and conduct buffer overflow a… CWE-120
Classic Buffer Overflow 		CVE-2014-9628 2024-11-21 11:21 2020-01-25 Show GitHub Exploit DB Packet Storm
277727 7.8 HIGH
Local 		videolan vlc_media_player The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows re… CWE-704
 Incorrect Type Conversion or Cast 		CVE-2014-9627 2024-11-21 11:21 2020-01-25 Show GitHub Exploit DB Packet Storm
277728 7.8 HIGH
Local 		videolan vlc_media_player Integer underflow in the MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to cause a denial of service or possibly have unsp… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2014-9626 2024-11-21 11:21 2020-01-25 Show GitHub Exploit DB Packet Storm
277729 7.8 HIGH
Local 		videolan vlc_media_player The GetUpdateFile function in misc/update.c in the Updater in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows remot… CWE-120
Classic Buffer Overflow 		CVE-2014-9625 2024-11-21 11:21 2020-01-25 Show GitHub Exploit DB Packet Storm
277730 6.5 MEDIUM
Network 		tornadoweb tornado Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be sent with HTTP compression, which makes it easier for remote attackers to conduct a BREACH attack and determi… CWE-203
 Information Exposure Through Discrepancy 		CVE-2014-9720 2024-11-21 11:21 2020-01-25 Show GitHub Exploit DB Packet Storm